CVE-2024-41151 | Apache HertzBeat up to 1.6.0 Notice Template deserialization

Posted by Angelo Barbosa | Nov 16, 2024 | CVE

A vulnerability, which was classified as critical, was found in Apache HertzBeat up to 1.6.0. This affects an unknown part of the component Notice Template Handler. The manipulation leads to deserialization.

This vulnerability is uniquely identified as CVE-2024-41151. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-41151 | Apache HertzBeat up to 1.6.0 Notice Template deserialization

Related Posts

CVE-2024-8760 | Stackable Plugin up to 3.13.6 on WordPress CSS injection

CVE-2024-2620 | Fujian Kelixin Communication Command and Dispatch Platform up to 20240318 api/client/down_file.php uuid sql injection

CVE-2024-36702 | MZ Automation libiec61850 1.5 /asn1/ber_encoder.c BerEncoder_encodeLength heap-based overflow (ID 505)

CVE-2024-4426 | Comparison Slider Plugin up to 1.0.5 on WordPress cross-site request forgery